@askexenow/exe-os 0.9.293 → 0.9.295

package/release-notes.json

@@ -1,10 +1,11 @@
 {
-  "current": "0.9.293",
+  "current": "0.9.295",
   "notes": {
-    "0.9.293": {
-      "version": "0.9.293",
+    "0.9.295": {
+      "version": "0.9.295",
       "date": "2026-06-18",
       "features": [
+        "unmerged-branch visibility (bug e324f244) (#208)",
         "5 P2 features — embed health dashboard, support reconcile, CC updater protection, LKG cache, error correlation IDs",
         "set CC autoUpdatesChannel to stable during install (feat 83552605)",
         "auto-reconcile local files with upstream status (feat 070bc025)",
@@ -28,8 +29,7 @@
         "admin backfill endpoint for api_key_hash — fixes all encrypted keys",
         "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
         "add dashboard + auth + otel to manifest as control-plane services",
-        "CLI service selection + exe-build removal from customer stack",
-        "automatic ERP invoice generation on top-up + monthly"
+        "CLI service selection + exe-build removal from customer stack"
       ],
       "fixes": [
         "ghost root-cause — UUID on pull + NOT NULL/non-empty schema guard (P0 26688a14)",
@@ -60,6 +60,9 @@
       ],
       "security": [],
       "other": [
+        "bump v0.9.295 — exe-os daemon image v0.9.294 in manifest",
+        "bump v0.9.294 — exe-auth repo + CI/CD on all 8 repos + branch hygiene",
+        "pin actions to SHAs, drop stale disabled workflows, fail-closed release gate, manifest signing tool (#207)",
         "bump v0.9.293 — 17 salvaged branches merged",
         "bump v0.9.292 — 24 features shipped, CI/CD Phase 3, 10 bugs fixed",
         "post-deploy health gate tests — verify container health, missing, crash-loop",
@@ -81,21 +84,26 @@
         "prepare v0.9.281 — 50 bugs fixed, stack 0.9.24 fully deployable",
         "bump v0.9.280 — GoTrue MCP auth, support fixes",
         "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
-        "service ownership matrix — dashboard is AskExe-only, not customer stack",
-        "bump version to 0.9.278",
-        "API documentation for wiki.askexe.com (5 pages)",
-        "consolidate platform procedures from 75 to 46 (37KB from 72KB) (#139)"
+        "service ownership matrix — dashboard is AskExe-only, not customer stack"
       ],
       "migration_notes": []
     },
-    "0.9.291": {
-      "version": "0.9.291",
+    "0.9.294": {
+      "version": "0.9.294",
       "date": "2026-06-18",
       "features": [
+        "unmerged-branch visibility (bug e324f244) (#208)",
+        "5 P2 features — embed health dashboard, support reconcile, CC updater protection, LKG cache, error correlation IDs",
+        "set CC autoUpdatesChannel to stable during install (feat 83552605)",
+        "auto-reconcile local files with upstream status (feat 070bc025)",
+        "expose embed worker fork status, PID, ready state in daemon health (feat 63c35469)",
+        "deploy validation tests — IP collision, manifest parity, image tags, env parity",
         "session_deregister + session_cleanup — force-remove stale sessions (feat 2e55cbe4)",
         "OOM crash-loop backoff — circuit breaker after 3 crashes in 10min (feat 8e976fe0)",
         "Exe Embeddings v1.2 + Graph cross-repo contracts (features 36aa70d0, 9f6b3164)",
         "bump daemon heap cap 2048→4096MB in launchd plist (feat 6ee417ca)",
+        "CI/CD Phase 3 — deploy validation + health gate tests + flaky test quarantine",
+        "add CI Phase 3 deploy validation — 5 static checks for compose/manifest",
         "surface degradation/health in cloud_status, memory_audit, doctor (2c85e74b)",
         "owner-scoped self-service bug-report updates (7ed54c42)",
         "add image availability + platform verification to deploy gate",
@@ -108,18 +116,21 @@
         "admin backfill endpoint for api_key_hash — fixes all encrypted keys",
         "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
         "add dashboard + auth + otel to manifest as control-plane services",
-        "CLI service selection + exe-build removal from customer stack",
-        "automatic ERP invoice generation on top-up + monthly",
-        "deploy OTLP collector on VPS",
-        "real per-model pricing for 40+ models + default → kimi-k2.7-code",
-        "ERP trigger engine wiring + profile sync via GoTrue user_metadata",
-        "v0.9.24 manifest — optional services + exe-build removed",
-        "usage alerts (webhook + email) + email verification /confirm page",
-        "welcome email, low balance alerts, password reset, Stripe portal",
-        "wire Stripe checkout → D1 credit_ledger (closes billing loop)"
+        "CLI service selection + exe-build removal from customer stack"
       ],
       "fixes": [
+        "ghost root-cause — UUID on pull + NOT NULL/non-empty schema guard (P0 26688a14)",
+        "sync generateExampleEnv with .env.example (ERP final8 + backups/WAL block)",
+        "caller-scoped spawn + real dispatch failure surfacing + boot identity/env guards (#202)",
+        "atomic+verified launchd registration (correct heap flag) + crash-debris rotation",
+        "stop ghost-row generation + bulk-cleanable + sync-safe deletion (P0 8399e330) (#201)",
+        "fetch isolation guard + quarantine flaky ws-client/ws-auth tests",
+        "4 session/infra bugs — degraded boot, Explore loop, gate message, COO identity guard",
+        "update_bug resolves bug by ID against remote admin API (#200)",
+        "exe-os auth/SSO/GoTrue (domain-configurable gateway, GoTrue From + SMTP confirm, SSO redirect wiring) (#198)",
+        "exe-os core bugs (embed OOM throttle, EXE_EMBEDDINGS plumbing, starvation-aware self-heal, CC native-binary risk) (#197)",
         "update task list identity message assertion to match code",
+        "exe-os stack hardening — per-service secrets, off-box backup, WAL/PITR + encrypted volumes, backup-script failure handling, ERP image bump",
         "green main — repair support-status-update + doctor degradations tests",
         "surface real MCP disconnects, intercom failures & consistent daemon status",
         "stop flagging expected stale-env tmux override as MISMATCH",
@@ -132,22 +143,17 @@
         "consolidation auth — accept OAuth token, fail loud on dead layer",
         "label memory count taxonomy so layers reconcile",
         "cap embed backfill retries with persistent dead-letter + per-run failure bound",
-        "reclaim orphaned .tmp snapshots + cap daily backups",
-        "stop ghost behavior rows from blocking retrieval & remediation",
-        "surface per-node recovery-phrase backup state + add key confirm-backup",
-        "stuck-task age alert so aged open tasks surface instead of rotting",
-        "measure timer durations on monotonic clock, not wall clock (7ccf6b1f)",
-        "reconcile mcp_ping license state with checkLicense path",
-        "measure daemon timer duration with monotonic clock",
-        "never silently return \"No tasks found\" on ambiguous identity",
-        "nudge sessions to reconnect MCP after restart (mitigates bug 9a1dc733)",
-        "recognize configured coordinator name in live-tmux root fallback (bug bb601d8a)",
-        "registry-auth tests call collectImageAvailabilityIssues directly (not via deploy gate)",
-        "make /exe status brief on-request, not auto-fire every session"
+        "reclaim orphaned .tmp snapshots + cap daily backups"
       ],
       "security": [],
       "other": [
+        "bump v0.9.294 — exe-auth repo + CI/CD on all 8 repos + branch hygiene",
+        "pin actions to SHAs, drop stale disabled workflows, fail-closed release gate, manifest signing tool (#207)",
+        "bump v0.9.293 — 17 salvaged branches merged",
+        "bump v0.9.292 — 24 features shipped, CI/CD Phase 3, 10 bugs fixed",
+        "post-deploy health gate tests — verify container health, missing, crash-loop",
         "bump v0.9.291 — 4 new features + CI fix",
+        "add health gate coverage — verifyComposeServicesRunning, timeout precedence, rollback preservation",
         "bump v0.9.290 — wave 2 bug fixes (#173-#190)",
         "bump v0.9.289 — 22 bug fixes merged (#150-#171)",
         "bump v0.9.288 — wave 1 features + 114 auth tests + CI fixes",
@@ -165,20 +171,25 @@
         "bump v0.9.280 — GoTrue MCP auth, support fixes",
         "bump v0.9.279 — stack v0.9.24, GoTrue support auth, optional services",
         "service ownership matrix — dashboard is AskExe-only, not customer stack",
-        "bump version to 0.9.278",
-        "API documentation for wiki.askexe.com (5 pages)",
-        "consolidate platform procedures from 75 to 46 (37KB from 72KB) (#139)",
-        "11 new platform procedures for v0.9.278 features",
-        "document five-layer customization preservation model (a88c354b) (#137)",
-        "bump version to 0.9.277",
-        "document_aware retrieval guidance — when and why agents should use it"
+        "bump version to 0.9.278"
       ],
       "migration_notes": []
     },
-    "0.9.289": {
-      "version": "0.9.289",
+    "0.9.293": {
+      "version": "0.9.293",
       "date": "2026-06-18",
       "features": [
+        "5 P2 features — embed health dashboard, support reconcile, CC updater protection, LKG cache, error correlation IDs",
+        "set CC autoUpdatesChannel to stable during install (feat 83552605)",
+        "auto-reconcile local files with upstream status (feat 070bc025)",
+        "expose embed worker fork status, PID, ready state in daemon health (feat 63c35469)",
+        "deploy validation tests — IP collision, manifest parity, image tags, env parity",
+        "session_deregister + session_cleanup — force-remove stale sessions (feat 2e55cbe4)",
+        "OOM crash-loop backoff — circuit breaker after 3 crashes in 10min (feat 8e976fe0)",
+        "Exe Embeddings v1.2 + Graph cross-repo contracts (features 36aa70d0, 9f6b3164)",
+        "bump daemon heap cap 2048→4096MB in launchd plist (feat 6ee417ca)",
+        "CI/CD Phase 3 — deploy validation + health gate tests + flaky test quarantine",
+        "add CI Phase 3 deploy validation — 5 static checks for compose/manifest",
         "surface degradation/health in cloud_status, memory_audit, doctor (2c85e74b)",
         "owner-scoped self-service bug-report updates (7ed54c42)",
         "add image availability + platform verification to deploy gate",
@@ -192,48 +203,43 @@
         "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
         "add dashboard + auth + otel to manifest as control-plane services",
         "CLI service selection + exe-build removal from customer stack",
-        "automatic ERP invoice generation on top-up + monthly",
-        "deploy OTLP collector on VPS",
-        "real per-model pricing for 40+ models + default → kimi-k2.7-code",
-        "ERP trigger engine wiring + profile sync via GoTrue user_metadata",
-        "v0.9.24 manifest — optional services + exe-build removed",
-        "usage alerts (webhook + email) + email verification /confirm page",
-        "welcome email, low balance alerts, password reset, Stripe portal",
-        "wire Stripe checkout → D1 credit_ledger (closes billing loop)",
-        "add Create Account tab — full sign-up flow on auth.askexe.com",
-        "add stable/canary/pinned update channels for progressive rollout (45a55727) (#138)",
-        "discovery hooks — auto-wire MCP tool hints into agent context (2fe666fb) (#136)",
-        "on-demand document→knowledge-graph concept extraction (1514443a) (#135)"
+        "automatic ERP invoice generation on top-up + monthly"
       ],
       "fixes": [
-        "recognize configured coordinator name in live-tmux root fallback (bug bb601d8a)",
-        "registry-auth tests call collectImageAvailabilityIssues directly (not via deploy gate)",
-        "make /exe status brief on-request, not auto-fire every session",
-        "add Phase 3 post-deploy container health verification",
-        "honor limit param + add pagination to list_my_bugs/list_my_features",
-        "reclaim full Docker space (all images + build cache)",
-        "patch launchd plist on upgrade — carry EXE_EMBEDDINGS + cap heap at 2GB",
-        "reply to server ping to stop 1006 connection flapping",
-        "prevent stale DEGRADED BOOT warning after MCP reconnects",
-        "per-service health timeout + stage erp-nginx/nginx.conf (bug d04cbc91)",
-        "break circular exec loop on 'exe-os update' (bug 2222dc1d)",
-        "resolve legacy model filenames so pre-rename installs find their GGUF",
-        "accept GET /v1/support/{bug,feature}-reports as list aliases",
-        "drop static container IPs + rollback restores prev compose",
-        "bind MCP port early with 503 bootstrap to kill /mcp ConnectionRefused race",
-        "never POST to live support API under test (stops CI/test spam) (#149)",
-        "add --expose-gc to all daemon spawn paths to prevent OOM crashes",
-        "fail-fast connect when daemon dead — boot no longer waits 4+ min",
-        "stop embed worker inheriting --max-old-space-size — OOM crash-loop (bug 0cd186d0)",
-        "reconcile docker-compose.yml from template on update",
-        "start ERP compose sidecars (nginx/ws/queue/scheduler)",
-        "ignore ghost coordinator registry entries in caller resolution",
-        "resilient exe-erp-websocket realtime entry resolution (bug 35576eed)",
-        "SIGKILL self on SIGTERM/SIGINT to avoid ggml Metal finalizer crash",
-        "replace any with unknown in session-start hook"
+        "ghost root-cause — UUID on pull + NOT NULL/non-empty schema guard (P0 26688a14)",
+        "sync generateExampleEnv with .env.example (ERP final8 + backups/WAL block)",
+        "caller-scoped spawn + real dispatch failure surfacing + boot identity/env guards (#202)",
+        "atomic+verified launchd registration (correct heap flag) + crash-debris rotation",
+        "stop ghost-row generation + bulk-cleanable + sync-safe deletion (P0 8399e330) (#201)",
+        "fetch isolation guard + quarantine flaky ws-client/ws-auth tests",
+        "4 session/infra bugs — degraded boot, Explore loop, gate message, COO identity guard",
+        "update_bug resolves bug by ID against remote admin API (#200)",
+        "exe-os auth/SSO/GoTrue (domain-configurable gateway, GoTrue From + SMTP confirm, SSO redirect wiring) (#198)",
+        "exe-os core bugs (embed OOM throttle, EXE_EMBEDDINGS plumbing, starvation-aware self-heal, CC native-binary risk) (#197)",
+        "update task list identity message assertion to match code",
+        "exe-os stack hardening — per-service secrets, off-box backup, WAL/PITR + encrypted volumes, backup-script failure handling, ERP image bump",
+        "green main — repair support-status-update + doctor degradations tests",
+        "surface real MCP disconnects, intercom failures & consistent daemon status",
+        "stop flagging expected stale-env tmux override as MISMATCH",
+        "exe-os cloud status hangs and never exits (exit 124)",
+        "recover retry-exhausted raw_events instead of dead-lettering forever",
+        "wire `exe-os settings` CLI subcommand (was a silent no-op)",
+        "task(list) no longer silently returns empty on ambiguous agent identity",
+        "wire exe-os healthcheck subcommand",
+        "stop scheduling vector backfill when embeddings are off",
+        "consolidation auth — accept OAuth token, fail loud on dead layer",
+        "label memory count taxonomy so layers reconcile",
+        "cap embed backfill retries with persistent dead-letter + per-run failure bound",
+        "reclaim orphaned .tmp snapshots + cap daily backups"
       ],
       "security": [],
       "other": [
+        "bump v0.9.293 — 17 salvaged branches merged",
+        "bump v0.9.292 — 24 features shipped, CI/CD Phase 3, 10 bugs fixed",
+        "post-deploy health gate tests — verify container health, missing, crash-loop",
+        "bump v0.9.291 — 4 new features + CI fix",
+        "add health gate coverage — verifyComposeServicesRunning, timeout precedence, rollback preservation",
+        "bump v0.9.290 — wave 2 bug fixes (#173-#190)",
         "bump v0.9.289 — 22 bug fixes merged (#150-#171)",
         "bump v0.9.288 — wave 1 features + 114 auth tests + CI fixes",
         "bump v0.9.287 — deploy gate auth fix + exe-erp v0.2.1",
@@ -252,20 +258,18 @@
         "service ownership matrix — dashboard is AskExe-only, not customer stack",
         "bump version to 0.9.278",
         "API documentation for wiki.askexe.com (5 pages)",
-        "consolidate platform procedures from 75 to 46 (37KB from 72KB) (#139)",
-        "11 new platform procedures for v0.9.278 features",
-        "document five-layer customization preservation model (a88c354b) (#137)",
-        "bump version to 0.9.277",
-        "document_aware retrieval guidance — when and why agents should use it",
-        "session lifecycle — 3-layer automatic state preservation",
-        "integrate session closeout, model registry, dreaming into platform procedures"
+        "consolidate platform procedures from 75 to 46 (37KB from 72KB) (#139)"
       ],
       "migration_notes": []
     },
-    "0.9.288": {
-      "version": "0.9.288",
+    "0.9.291": {
+      "version": "0.9.291",
       "date": "2026-06-18",
       "features": [
+        "session_deregister + session_cleanup — force-remove stale sessions (feat 2e55cbe4)",
+        "OOM crash-loop backoff — circuit breaker after 3 crashes in 10min (feat 8e976fe0)",
+        "Exe Embeddings v1.2 + Graph cross-repo contracts (features 36aa70d0, 9f6b3164)",
+        "bump daemon heap cap 2048→4096MB in launchd plist (feat 6ee417ca)",
         "surface degradation/health in cloud_status, memory_audit, doctor (2c85e74b)",
         "owner-scoped self-service bug-report updates (7ed54c42)",
         "add image availability + platform verification to deploy gate",
@@ -286,41 +290,40 @@
         "v0.9.24 manifest — optional services + exe-build removed",
         "usage alerts (webhook + email) + email verification /confirm page",
         "welcome email, low balance alerts, password reset, Stripe portal",
-        "wire Stripe checkout → D1 credit_ledger (closes billing loop)",
-        "add Create Account tab — full sign-up flow on auth.askexe.com",
-        "add stable/canary/pinned update channels for progressive rollout (45a55727) (#138)",
-        "discovery hooks — auto-wire MCP tool hints into agent context (2fe666fb) (#136)",
-        "on-demand document→knowledge-graph concept extraction (1514443a) (#135)"
+        "wire Stripe checkout → D1 credit_ledger (closes billing loop)"
       ],
       "fixes": [
+        "update task list identity message assertion to match code",
+        "green main — repair support-status-update + doctor degradations tests",
+        "surface real MCP disconnects, intercom failures & consistent daemon status",
+        "stop flagging expected stale-env tmux override as MISMATCH",
+        "exe-os cloud status hangs and never exits (exit 124)",
+        "recover retry-exhausted raw_events instead of dead-lettering forever",
+        "wire `exe-os settings` CLI subcommand (was a silent no-op)",
+        "task(list) no longer silently returns empty on ambiguous agent identity",
+        "wire exe-os healthcheck subcommand",
+        "stop scheduling vector backfill when embeddings are off",
+        "consolidation auth — accept OAuth token, fail loud on dead layer",
+        "label memory count taxonomy so layers reconcile",
+        "cap embed backfill retries with persistent dead-letter + per-run failure bound",
+        "reclaim orphaned .tmp snapshots + cap daily backups",
+        "stop ghost behavior rows from blocking retrieval & remediation",
+        "surface per-node recovery-phrase backup state + add key confirm-backup",
+        "stuck-task age alert so aged open tasks surface instead of rotting",
+        "measure timer durations on monotonic clock, not wall clock (7ccf6b1f)",
+        "reconcile mcp_ping license state with checkLicense path",
+        "measure daemon timer duration with monotonic clock",
+        "never silently return \"No tasks found\" on ambiguous identity",
+        "nudge sessions to reconnect MCP after restart (mitigates bug 9a1dc733)",
+        "recognize configured coordinator name in live-tmux root fallback (bug bb601d8a)",
         "registry-auth tests call collectImageAvailabilityIssues directly (not via deploy gate)",
-        "never POST to live support API under test (stops CI/test spam) (#149)",
-        "replace any with unknown in session-start hook",
-        "green main — remove pre-deploy image check (needs auth), update tests for rate-limit + nginx port",
-        "skip image-availability check for private registry + exe-erp v0.2.1",
-        "exe-erp v0.2.0-final8 with socketio.js + realtime/ baked in",
-        "erp-nginx backend IP .32 (not .28, taken by erp-queue)",
-        "unique frontend IPs — auth 10.43.0.35, erp-nginx 10.43.0.28 (no collisions)",
-        "frontend subnet 10.43.0.x (not 10.42.1.x) for erp-nginx + auth",
-        "erp-nginx port 8000→80 (nginx listens on 80, not 8000) + fix frontend subnet",
-        "ERP_PORT→ERP_API_PORT + port :80→:8000 + CRM version in test (bug 23ee1ab2)",
-        "lift rate limits — resolve merge conflicts",
-        "lift rate limits on bug/feature filing — every report matters",
-        "add otel-collector to official image allowlist — unblocks stack-update",
-        "correct exe-os + exe-auth digests for amd64 in manifest 0.9.24 (bug e0c3b3fb)",
-        "update exe-os daemon image to v0.9.281 in manifest 0.9.24",
-        "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
-        "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
-        "ERP healthcheck Host header + websocket path for Frappe 17 (bugs 7c905474, 468cc508)",
-        "rotate signing key to match Worker secret (bug 834ffb70)",
-        "add exe-auth service to main compose + fix image reference to update.askexe.com",
-        "align compose default image tags with manifest 0.9.24 (bug 79168bac)",
-        "isDaemonAlive falls back to socket check when PID file missing (bug b5fb9404)",
-        "correct exe-erp image tag final7→final3 in manifests 0.9.23 + 0.9.24 (bug ff960d31)",
-        "create exe_erp login role in init-db.sql (bug 9d452322)"
+        "make /exe status brief on-request, not auto-fire every session"
       ],
       "security": [],
       "other": [
+        "bump v0.9.291 — 4 new features + CI fix",
+        "bump v0.9.290 — wave 2 bug fixes (#173-#190)",
+        "bump v0.9.289 — 22 bug fixes merged (#150-#171)",
         "bump v0.9.288 — wave 1 features + 114 auth tests + CI fixes",
         "bump v0.9.287 — deploy gate auth fix + exe-erp v0.2.1",
         "bump v0.9.286 — exe-erp final8 in manifest",
@@ -342,18 +345,22 @@
         "11 new platform procedures for v0.9.278 features",
         "document five-layer customization preservation model (a88c354b) (#137)",
         "bump version to 0.9.277",
-        "document_aware retrieval guidance — when and why agents should use it",
-        "session lifecycle — 3-layer automatic state preservation",
-        "integrate session closeout, model registry, dreaming into platform procedures",
-        "route all memory benchmarks through the embed daemon"
+        "document_aware retrieval guidance — when and why agents should use it"
       ],
       "migration_notes": []
     },
-    "0.9.285": {
-      "version": "0.9.285",
-      "date": "2026-06-17",
+    "0.9.289": {
+      "version": "0.9.289",
+      "date": "2026-06-18",
       "features": [
+        "surface degradation/health in cloud_status, memory_audit, doctor (2c85e74b)",
+        "owner-scoped self-service bug-report updates (7ed54c42)",
         "add image availability + platform verification to deploy gate",
+        "'Why did the daemon restart?' telemetry report [3caa55e9]",
+        "dark/light/system theme toggle on Exe Foundry Bold tokens [6df56277]",
+        "prospective memory as native 5th cognition layer (9261d452)",
+        "CPU-steal detection in health tooling (7b9386ad)",
+        "host-access consent gate for monitor agent (f7ebb1fa)",
         "GoTrue JWT auth for MCP — exe-os login/logout/whoami",
         "admin backfill endpoint for api_key_hash — fixes all encrypted keys",
         "implement startMonitor for Slack/Discord/Telegram/WhatsApp + SMTP via nodemailer",
@@ -370,44 +377,45 @@
         "add Create Account tab — full sign-up flow on auth.askexe.com",
         "add stable/canary/pinned update channels for progressive rollout (45a55727) (#138)",
         "discovery hooks — auto-wire MCP tool hints into agent context (2fe666fb) (#136)",
-        "on-demand document→knowledge-graph concept extraction (1514443a) (#135)",
-        "agent capability cards — A2A-style JSON manifests (5774904f) (#134)",
-        "surface retrieval health in cloud_status, memory_audit, mcp_ping (2c85e74b) (#133)",
-        "executable memories as reflex behavior suggestions (9bd99f2a) (#132)",
-        "emotional baselines per agent role (dbfbe67f) (#131)",
-        "split exe-os into server (~200MB) and worker (~1GB) images (#130)",
-        "out-of-process socket watchdog (c3b287cc) (#129)",
-        "hot-path session summary — compress last checkpoint into ~200 tokens at boot (edaf4eb3) (#128)"
+        "on-demand document→knowledge-graph concept extraction (1514443a) (#135)"
       ],
       "fixes": [
-        "add otel-collector to official image allowlist — unblocks stack-update",
-        "correct exe-os + exe-auth digests for amd64 in manifest 0.9.24 (bug e0c3b3fb)",
-        "update exe-os daemon image to v0.9.281 in manifest 0.9.24",
-        "mcp_ping reports alive when running inside daemon process (bug b5fb9404)",
-        "add exe-erp-nginx for static assets + remove direct gunicorn port (bug 6776edf0)",
-        "ERP healthcheck Host header + websocket path for Frappe 17 (bugs 7c905474, 468cc508)",
-        "rotate signing key to match Worker secret (bug 834ffb70)",
-        "add exe-auth service to main compose + fix image reference to update.askexe.com",
-        "align compose default image tags with manifest 0.9.24 (bug 79168bac)",
-        "isDaemonAlive falls back to socket check when PID file missing (bug b5fb9404)",
-        "correct exe-erp image tag final7→final3 in manifests 0.9.23 + 0.9.24 (bug ff960d31)",
-        "create exe_erp login role in init-db.sql (bug 9d452322)",
-        "CRM_SERVER_URL uses crm. subdomain + add EXE_CRM_ADMIN_EMAIL (bugs 8d20e779, 7debf355)",
-        "use update.askexe.com for exe-auth image in manifest 0.9.24 (bug 97f2d288)",
-        "ensure description field is never empty in feature request upstream payload (bug 0a8e16d0)",
-        "add WSL clip.exe detection to shipped tmux.conf (bug 3396fb26)",
-        "include node binary dir in exe-os-node shim PATH (bug 71adcb68)",
-        "add minimum daemon age guard to prevent crash-loop (bug 25faecf3)",
-        "digest-pin all 0.9.24 images + remove control-plane from customer manifest",
-        "resolve full UUID before upstream delivery — fixes update_bug/update_feature 400s (bug 31b1d2e3)",
-        "dual-key JWT verification — accept tokens signed by previous key (bug 2f5d6166)",
-        "add sync_meta to SQL guard allowlist — fixes cloud sync (bug 9fbbe145)",
-        "accept digest-only official images in deploy gate",
-        "prevent empty/duplicate company_procedure rows at the source",
-        "remove duplicate if-block causing TS build failure"
+        "recognize configured coordinator name in live-tmux root fallback (bug bb601d8a)",
+        "registry-auth tests call collectImageAvailabilityIssues directly (not via deploy gate)",
+        "make /exe status brief on-request, not auto-fire every session",
+        "add Phase 3 post-deploy container health verification",
+        "honor limit param + add pagination to list_my_bugs/list_my_features",
+        "reclaim full Docker space (all images + build cache)",
+        "patch launchd plist on upgrade — carry EXE_EMBEDDINGS + cap heap at 2GB",
+        "reply to server ping to stop 1006 connection flapping",
+        "prevent stale DEGRADED BOOT warning after MCP reconnects",
+        "per-service health timeout + stage erp-nginx/nginx.conf (bug d04cbc91)",
+        "break circular exec loop on 'exe-os update' (bug 2222dc1d)",
+        "resolve legacy model filenames so pre-rename installs find their GGUF",
+        "accept GET /v1/support/{bug,feature}-reports as list aliases",
+        "drop static container IPs + rollback restores prev compose",
+        "bind MCP port early with 503 bootstrap to kill /mcp ConnectionRefused race",
+        "never POST to live support API under test (stops CI/test spam) (#149)",
+        "add --expose-gc to all daemon spawn paths to prevent OOM crashes",
+        "fail-fast connect when daemon dead — boot no longer waits 4+ min",
+        "stop embed worker inheriting --max-old-space-size — OOM crash-loop (bug 0cd186d0)",
+        "reconcile docker-compose.yml from template on update",
+        "start ERP compose sidecars (nginx/ws/queue/scheduler)",
+        "ignore ghost coordinator registry entries in caller resolution",
+        "resilient exe-erp-websocket realtime entry resolution (bug 35576eed)",
+        "SIGKILL self on SIGTERM/SIGINT to avoid ggml Metal finalizer crash",
+        "replace any with unknown in session-start hook"
       ],
       "security": [],
       "other": [
+        "bump v0.9.289 — 22 bug fixes merged (#150-#171)",
+        "bump v0.9.288 — wave 1 features + 114 auth tests + CI fixes",
+        "bump v0.9.287 — deploy gate auth fix + exe-erp v0.2.1",
+        "bump v0.9.286 — exe-erp final8 in manifest",
+        "add cross-service SSO + key rotation + daemon restart tests (35 tests)",
+        "45 tests for image validation, ${VAR:-default} resolution, platform checks",
+        "add 16 activate fallback chain tests — covers bug 2f5d6166 failure modes",
+        "add 18 key rotation tests — dual-key verify, grace, fallback chain",
         "bump v0.9.285 — deploy gate image verification",
         "bump v0.9.284 — otel deploy gate fix",
         "bump v0.9.283 — amd64 digest fix",
@@ -424,15 +432,7 @@
         "bump version to 0.9.277",
         "document_aware retrieval guidance — when and why agents should use it",
         "session lifecycle — 3-layer automatic state preservation",
-        "integrate session closeout, model registry, dreaming into platform procedures",
-        "route all memory benchmarks through the embed daemon",
-        "make daemon smoke gate CI-safe under load (#96)",
-        "release: stack 0.9.23 — exe-gateway v0.9.21 (WhatsApp pipeline fixes)",
-        "expect Exe Embeddings v1 default modelFile",
-        "update release-notes.json",
-        "bump 0.9.275 — bundle stack 0.9.22 manifest for stack-update",
-        "release: stack 0.9.22 — exe-os v0.9.270, exe-crm v0.9.48, exe-gateway v0.9.18 (digest-pinned)",
-        "bump 0.9.273 — graph/send_whatsapp/phantom-notif fixes"
+        "integrate session closeout, model registry, dreaming into platform procedures"
       ],
       "migration_notes": []
     }